Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
File: p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft (raw, json)
Hash identifier: tM18W7sgNFoYw1pJ7iCSuiI4bgYLK44nyVNe5TcI/TY=
Subject key identifier: D2:5B:0C:C3:A6:46:CE:C7:DC:DE:EA:21:6E:66:7B:8D:89:B3:6A:55
Authority key identifier: A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0
Certificate issuer: /CN=a764a26f76355140aa696e0a4f1f0c312b7277c0
Certificate serial: 019D97E19680D697E2C396F5857835DBDD29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
Manifest number: 15FB
Signing time: Thu 16 Apr 2026 20:00:36 +0000
Manifest this update: Thu 16 Apr 2026 20:00:36 +0000
Manifest next update: Fri 17 Apr 2026 20:00:36 +0000
Files and hashes: 1: p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl (hash: c6Stpz0SyRiolneVMK5dWIWQ4DtEGy2armQJ3KS5c48=)
2: ui7FUzschC45AaandKwrKd4ZLOE.roa (hash: p64p3A+w4Rzd9qzg1tn0C4YDnUbbDXUrufa5/DaN5QU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:96:80:d6:97:e2:c3:96:f5:85:78:35:db:dd:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a764a26f76355140aa696e0a4f1f0c312b7277c0
Validity
Not Before: Apr 16 20:00:36 2026 GMT
Not After : Apr 17 20:00:36 2026 GMT
Subject: CN=d25b0cc3a646cec7dcdeea216e667b8d89b36a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1c:1d:e4:aa:79:fb:f3:68:af:7d:9f:02:53:
9d:75:93:be:6e:9a:49:52:6b:81:ee:d8:84:1a:b7:
78:4f:b7:1d:fd:97:76:f6:d1:a6:f9:0d:bb:10:78:
2b:f4:b7:7b:f7:fc:6a:58:8a:7a:ad:2d:7f:ea:8e:
25:fd:2b:69:20:4b:f2:f3:f1:d0:f8:d9:7f:9a:db:
46:99:2c:77:ca:33:f0:28:5f:4f:e7:70:3b:95:47:
33:3e:5d:5a:0d:2f:66:79:46:cf:5a:7a:7f:37:18:
f7:72:21:06:cc:6c:ba:dc:01:46:61:d4:9e:9a:e3:
89:ed:f1:ee:71:80:c0:0e:d7:6f:1e:79:ca:a1:56:
99:0c:fc:b9:cf:8a:d1:fb:7e:87:ed:a4:da:2d:64:
d7:8d:6c:36:9b:fe:ab:2c:67:63:75:ab:dd:73:53:
8d:8b:ed:ab:79:9e:05:45:f4:91:25:49:8b:5d:b3:
49:dd:e0:1b:fd:a4:df:8f:bc:4e:21:a1:3d:4b:6d:
19:00:40:1a:8e:e1:cf:dc:3d:6d:65:81:05:84:ed:
ab:aa:63:0d:be:40:5c:a7:a3:13:96:ce:7b:ff:ab:
d1:0b:80:2f:ce:98:9a:dd:7f:7c:87:14:d6:1e:5e:
f8:85:80:d3:38:85:d2:25:6d:e0:14:b0:d9:ad:3f:
c9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:5B:0C:C3:A6:46:CE:C7:DC:DE:EA:21:6E:66:7B:8D:89:B3:6A:55
X509v3 Authority Key Identifier:
keyid:A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:5c:6f:81:06:7e:e5:a4:aa:12:c7:66:07:c2:7c:c6:f7:73:
2c:f0:e1:86:10:df:09:76:95:cd:a6:e2:ac:01:5d:9e:b6:9c:
b2:6a:84:05:63:d8:ad:64:be:dc:d1:c1:aa:a3:bd:01:ed:78:
88:5e:72:e4:ed:4f:7e:44:25:75:0f:fc:83:35:91:a5:f1:18:
0b:36:e8:d1:fa:ef:41:5c:c4:66:a0:10:21:54:4b:3e:5b:c6:
cd:27:3d:2f:3e:15:97:53:9f:76:0b:e8:2d:e4:6f:fe:c5:91:
05:04:89:2c:95:95:6c:6a:fc:4c:38:be:60:95:f9:e1:44:a3:
ae:4e:b9:cd:a8:ae:82:dd:fb:28:fc:a2:0a:c6:2f:42:cd:21:
3c:25:37:35:fc:23:9e:df:f3:e9:d3:ae:ff:a6:0d:e8:b4:42:
04:0c:4a:25:89:ac:6d:bf:e0:6e:c0:bb:1e:f1:b7:7c:ff:cf:
39:29:08:53:36:e9:d9:22:52:35:9a:d0:94:80:b5:35:78:9d:
b8:a1:49:a0:84:6c:5f:24:bf:f6:5f:5d:03:55:41:20:68:d4:
2c:13:33:26:8f:dc:d7:59:be:52:4d:da:81:3d:f3:d8:6f:d5:
9f:e7:ab:79:1c:2b:a4:b2:88:ee:91:e3:d2:12:7c:24:43:b9:
92:28:35:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:47:30 2026 by rpki-client